Kenta Companion, 5bf94585af0489d21852c82a9f9157821b1edd20

CVE, Research URL: 5bf94585af0489d21852c82a9f9157821b1edd20
Home page URL: Security reports for Kenta Companion
Application: Kenta Companion
Published on: Jul 18, 2023
Research Description: Kenta Companion [kenta-companion] < 1.1.9 WordPress Kenta Companion Plugin < 1.1.9 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Kenta Companion Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.1.9.
Affected versions: max 1.1.9.
Status: vulnerable